burger icon
21Bit Сasino
Log In

Privacy Policy

This Privacy Policy explains how your personal information is collected, used, stored, and protected when you use the online casino services offered by 21bit.bet. It applies to all players, website visitors, and service users on or after 1 March 2025. Maintaining privacy and data protection is crucial to delivering a safe, transparent, and compliant gaming environment for all users.

Who We Are

OBSERVE: The operator of 21bit.bet is Dama N.V., a company legally registered and headquartered at Scharlooweg 39, Willemstad, Curaçao, with company registration number 152125. 21bit.bet operates under a valid Online Gaming License No. OGL/2023/174/0082, issued by the Curaçao Gaming Control Board (GCB) and prolongated until 2025. Payment processing services are managed by subsidiary Friolion Ltd., registered in Cyprus (registration number ΗΕ 419102).

  • Contact Information: For data protection or privacy-related matters, you may contact our Data Protection Office or responsible staff at [email protected]. All inquiries will be addressed promptly and in accordance with applicable legal requirements.

What Personal Data We Collect

OBSERVE: 21bit.bet gathers different types of personal and technical data to deliver gaming and support services, fulfil legal obligations, and optimise your experience.

  • Personal Data: Name, date of birth, residential address, email address, phone number, documentation details for verification (KYC/AML), payment information (bank account, digital wallet, card data).
  • Technical Data: IP address, device identifiers, browser type/version, access logs, session data, and usage timestamps.
  • Behavioral Data: Game history, betting and transaction records, win/loss statistics, clickstream data, time spent on site, and site interactions.
  • Cookies & Tracking Technologies: Session and persistent cookies, device fingerprinting, and similar identifiers for site performance, analytics, personalisation, and marketing.
  • Third-Party Data: Information from payment partners and affiliates, subject to proper consent where required.

All data collection conducted in accordance with AU privacy laws, the Australian Privacy Act 1988 (Cth) (APPs), and applicable Curaçao and EU data protection standards as relevant.

Legal Basis for Processing

OBSERVE: In compliance with the Australian Privacy Act, gaming regulations, and the Curaçao licensing framework, 21bit.bet uses the following legal grounds for processing your data:

  1. User Consent: Consent is obtained for marketing communications, use of non-essential cookies, and data sharing with third-party advertising networks. Consent may be withdrawn at any time.
  2. Performance of Contract: Processing required for account set-up, maintenance, gameplay experience, executing transactions, and supporting payouts.
  3. Compliance with Legal Obligations: Verification of identity (KYC), Anti-Money Laundering compliance (AML), fraud detection, regulatory reporting, and dispute resolution are mandated by licensing and AU law.
  4. Legitimate Interests: Data is processed to ensure platform security, prevent abuse, enable statistical analytics, and optimise operational performance, provided such interests do not override your fundamental privacy rights.

EXPAND: Additional lawful bases may apply for service updates required by regulatory authorities or as permitted under AU and international data protection law.

Purpose of Processing

OBSERVE & REFLECT: Your personal data is handled for well-defined, lawful, and transparent purposes, including:

  • Providing Casino Services: Creation and management of player accounts, enabling gameplay, processing deposits and withdrawals, managing bonuses and promotions.
  • Improving Service Quality: Analysing usage data to enhance user experience and platform performance.
  • Marketing Communications: Sending promotional offers, newsletters, and updates, subject to your explicit consent and opt-out rights under Australian law.
  • Analytics and Reporting: Generating internal statistics, platform monitoring, and business intelligence.
  • Fraud Prevention & Security: Detection, investigation, and mitigation of fraud, abuse, money laundering, and regulatory violations.

We ensure data is only processed to the minimum extent necessary for the stated purposes and in strict compliance with AU and Curaçao regulations.

Disclosure & Sharing

OBSERVE: 21bit.bet shares personal data strictly on a need-to-know basis, under clear legal obligations or your affirmative consent.

  • Payment Service Providers: Data is shared with banks, processors, and payment gateways (including Friolion Ltd. in Cyprus) solely to facilitate transactions and verify accounts.
  • Service Providers: IT, hosting, analytics, customer support, and compliance services may access data, bound by strict confidentiality and data security agreements.
  • Regulatory Authorities: Information may be disclosed to the Curaçao Gaming Control Board, AU authorities, or other regulators where required by law or gaming license conditions.
  • Affiliates and Marketing Partners: Data is disclosed for marketing and promotional purposes only with your consent and in accordance with AU direct marketing rules.
  • Other Legal Recipients: Data may be shared to comply with court orders, defend legal claims, or protect the rights, property, or safety of 21bit.bet or its users.

Every data-sharing arrangement is governed by written contracts with appropriate privacy safeguards as mandated under AU and Curaçao law.

International Transfers

OBSERVE: Your data may be transferred outside Australia for payment processing, support, and regulatory purposes. Most transfers occur to Curaçao (HQ, licensing) and Cyprus (subsidiary payment processor).

  1. Protection Mechanisms: Data transfers are secured via standard contractual clauses, intra-group agreements, and equivalent legal protections in accordance with Australian Privacy Principle 8 (APP 8), Curaçao, and international standards.
  2. Data Security: Technical and organisational measures ensure protection during transit and handling, including encryption and access controls.
  3. Your Rights: You may inquire about, or object to, overseas data transfers by contacting [email protected].

No data is transferred to countries without adequate data protection measures as defined under AU and Curaçao law. Data processing partners are regularly assessed for compliance until at least 2025.

Data Retention

OBSERVE & EXPAND: 21bit.bet maintains your personal data only as long as necessary for the purposes set forth in this Policy, legal requirements, and regulatory obligations.

  • User Account Data: Retained for the lifetime of the account and up to five (5) years after account closure or final transaction to comply with AU AML/CTF and regulatory requirements, extendable to 2025.
  • KYC/AML Data: Held for a minimum statutory period (normally five years from the date of last activity or as required by law).
  • Technical and Usage Data: Maintained for up to three (3) years, or as long as is necessary to fulfil operational, security, or legal audit needs.
  • Marketing & Analytics Data: Retained until consent is withdrawn or three (3) years from last interaction, whichever occurs first.

Deletion Criteria: Data is deleted upon user request (where lawful), expiry of legal obligations, or when the purpose for which it was collected has ended, in compliance with AU and regulatory policies.

Your Rights

OBSERVE: As an AU and international user of 21bit.bet, you are entitled to exercise the following rights regarding your personal data:

  • Access: Obtain confirmation whether 21bit.bet processes your data and request a copy of the data held.
  • Correction: Request rectification of inaccurate, outdated, or incomplete personal information.
  • Erasure: Request deletion of your data under lawful grounds, including withdrawal of consent or lack of legal necessity, subject to retention requirements.
  • Restriction: Limit processing of your data during review of requests or where accuracy is contested.
  • Objection: Object to processing for direct marketing, analytics, or on other permissible grounds.
  • Data Portability: Request transfer of your personal data in a structured, commonly used electronic format where technically feasible.
  • Withdraw Consent: Withdraw consent for marketing and non-essential data processing at any time, without affecting prior lawful usage.

To exercise your rights, please contact [email protected]. All requests are reviewed in accordance with Australian and Curaçao law, with responses provided within required statutory timeframes.

Cookies & Tracking Technologies

OBSERVE: 21bit.bet utilises cookies and comparable tracking technologies for site functionality, personalisation, analytics, and targeted advertising.

  • Session Cookies: Temporarily stored cookies that enable platform navigation and essential functions, deleted after each session.
  • Persistent Cookies: Remain on your device for a defined period to facilitate user preferences and site customisation.
  • Third-Party Cookies: Set by analytics providers, advertisers, or affiliate networks, subject to your explicit consent.
  • Management: You may manage, block, or delete cookies through your browser settings at any time or use internal cookie control panels (where available).
  • Purposes: Cookies support secure logins, performance monitoring, audience measurement, and delivery of relevant advertisements in line with AU consent requirements.

Full details on cookie types, retention, and management are available within our Cookie Policy. Continued use of 21bit.bet after being notified implies acceptance of our cookie practices unless you actively opt out.

Data Security

OBSERVE: 21bit.bet employs robust technical and organisational measures to ensure the security and confidentiality of your data, meeting Australian and Curaçao legal standards.

  1. Technical Protections:
    • SSL encryption for data transmission
    • Server-side encryption of sensitive records
    • Multi-layered network and infrastructure security
    • Comprehensive access controls with role-based permissions
  2. Organisational Protections:
    • Regular staff training and awareness programs regarding data privacy
    • Periodic security audits and penetration testing by independent experts
    • Documented incident response procedures
    • Privacy-by-design and data minimisation principles embedded in all processes

Data security processes are regularly reviewed and updated, ensuring continued compliance with AU law and best industry practice through at least 2025.

Complaints & Contacts

OBSERVE & EXPAND: You may address privacy questions, exercise your legal rights, or lodge complaints through the following contact point:

Complaint Procedure: If you believe your privacy or data protection rights have been infringed, please contact our DPO at the above address. All complaints are investigated and addressed according to our internal policies and AU regulatory obligations. If dissatisfied with our response, you may escalate concerns to the Office of the Australian Information Commissioner (OAIC) or relevant supervisory authorities.

Updates

OBSERVE: This Privacy Policy is subject to periodic revision to reflect legal, operational, or regulatory changes.

  • User Notification: Significant changes will be communicated via email notifications or prominent website banners. We encourage users to regularly review this page for the latest information.
  • Effective Date: Policy last revised on 1 March 2025; valid through at least 2025 or until further notification.

Further details or clarifications may be obtained by contacting [email protected].